DNS Gurus
Cached · just now
25 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=63072000; includeSubDomains
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Add Content-Security-Policy header to prevent XSS attacks
  • Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers
Connection
Performance
close
Vary
Performance
Accept-Encoding

Caching Headers

2 headers
Cache-Control
Caching
max-age=0, private, must-revalidate
Etag
Caching
W/"afc34e00c5027f6884561185c5c0f8e9"

Content Headers

2 headers
Content-Length
Content
7417
Content-Type
Content
text/html; charset=utf-8

Server Headers

2 headers
Server
Server
Heroku
X-Runtime
Server
0.008873

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
_subscribers_notifications_session=uRITbMDke%2BPMTb5kX%2FovIs8BwdQRMKjVTKFcCNT5wsd5wNdKPrYAJwTiRM8oMvbLR%2Btm1p7McGg2fdgnr8jLsBMsBnCIXTdW%2F4xDqprnTnzG3PqFRqEETukJN9voB8PgpYu5MBIuBgznBZTESA%3D%3D--q2v2Y1sWjt8kUnXC--QFfDJZ%2F4F3tepGYb1dxDrQ%3D%3D; path=/; secure; HttpOnly; SameSite=None

Other Headers

11 headers
Date
Other
Sun, 28 Dec 2025 13:09:06 GMT
Nel
Other
{"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To
Other
{"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=KqfuA6M%2FpzK9CEB6mr5gemVNkqPj5W3K1O5x3p9JaHI%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766927346"}],"max_age":3600}
Reporting-Endpoints
Other
heroku-nel="https://nel.heroku.com/reports?s=KqfuA6M%2FpzK9CEB6mr5gemVNkqPj5W3K1O5x3p9JaHI%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766927346"
Via
Other
1.1 heroku-router, 1.1 d0c7523233c2ce4a1a420cfda612235a.cloudfront.net (CloudFront)
X-Amz-Cf-Id
Other
eQz8o1tRXGHzydnLK7Nl-tEW-fkLE_px3g9F5rcs_XNaZ-pOQIpvfw==
X-Amz-Cf-Pop
Other
IAD61-P4
X-Cache
Other
Miss from cloudfront
X-Download-Options
Other
noopen
X-Permitted-Cross-Domain-Policies
Other
none
X-Request-Id
Other
0922ca13-9e57-41da-43aa-1babd119b8bd

Recommendations

Enable compression (gzip/brotli) to improve performance

Analysis completed in 83ms